CNNVD-202512-508 Information
Dec 04, 2025
cve
CNNVD ID
CNNVD-202512-508
Related CVE
- CNNVD Published: 2025-12-04
Description (Chinese)
Synology BeeDrive是中国群晖(Synology)公司的一个备份与同步设备。 Synology BeeDrive 1.4.2-13960之前版本存在路径遍历漏洞,该漏洞源于路径名限制不当,可能导致本地用户执行任意代码。
Description (English)
Synology BeeDrive is a backup and synchronized device for Synology. Prior to the Synology BeeDrive 1.4.2-1396, there was a loophole in the path, which stemmed from inappropriate path name limitations that could lead local users to enforce arbitrary codes.
Hazard Level
Medium
Vulnerability Type
路径遍历
Affected Vendor
群晖
Published
2025-12-04
Last Modified
2026-02-24
References
https://www.synology.com/en-global/security/advisory/Synology_SA_25_08
Patch
https://www.synology.com/en-global/security/advisory/Synology_SA_25_08
Share on: